54 matches found
OPENSUSE-SU-2024:10258-1 pidgin-otr-4.0.2-1.5 on GA media
These are all security issues fixed in the pidgin-otr-4.0.2-1.5 package on the GA media of openSUSE Tumbleweed...
SUSE CVE-2012-2369
Format string vulnerability in the logmessagecb function in otr-plugin.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 3.2.1 for Pidgin might allow remote attackers to execute arbitrary code via format string specifiers in data that generates a log message...
GLSA-201701-10 : libotr, Pidgin OTR: Remote execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201701-10 libotr, Pidgin OTR: Remote execution of arbitrary code Multiple vulnerabilities exist in both libotr and Pidgin OTR. Please review the CVE identifiers for more information. Impact : A remote attacker could send a special...
CVE-2015-8833
Use-after-free vulnerability in the createsmpdialog function in gtk-dialog.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item...
DEBIAN-CVE-2015-8833
Use-after-free vulnerability in the createsmpdialog function in gtk-dialog.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item...
CVE-2015-8833
Use-after-free vulnerability in the createsmpdialog function in gtk-dialog.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item...
SUSE: Security Advisory for pidgin-otr (SUSE-SU-2016:0912-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-8833
CVE-2015-8833 is a use-after-free vulnerability in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin. The flaw occurs in the create_smp_dialog function (gtk-dialog.c) and is triggered via the “Authenticate buddy” path, allowing remote attackers to execute arbitrary code...
CVE-2015-8833
Use-after-free vulnerability in the createsmpdialog function in gtk-dialog.c in the Off-the-Record Messaging OTR pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item...
SUSE SLED12 Security Update : pidgin-otr (SUSE-SU-2016:0912-1)
This update for pidgin-otr fixes the following issues : - CVE-2015-8833: A heap based use-after-free issue was fixed in pidgin-otr that could lead to crashes or potential code execution. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE securi...
Mageia: Security Advisory (MGASA-2016-0125)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2016:0912-1 Security update for pidgin-otr
This update for pidgin-otr fixes the following issues: - CVE-2015-8833: A heap based use-after-free issue was fixed in pidgin-otr that could lead to crashes or potential code execution...
MGASA-2016-0125 Updated pidgin-otr packages fix security vulnerability
The pidgin-otr plugin before 4.0.2 is vulnerable to a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function createsmpdialog CVE-2015-8833...
Updated pidgin-otr packages fix security vulnerability
The pidgin-otr plugin before 4.0.2 is vulnerable to a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function createsmpdialog CVE-2015-8833...
openSUSE Security Update : pidgin-otr (openSUSE-2016-397)
This update to pidgin-otr 4.0.2 fixes the following issue : - CVE-2015-8833: use-after-free issue during SMP boo970498 It also contains new and updated translations. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
pidgin-otr denial of service vulnerability
pidgin is a set of free and easy to use chat client program. pidgin-otr is one of the plug-ins used to implement message logging . A denial of service vulnerability exists in pidgin-otr prior to version 4.0.2-1. A remote attacker can exploit this vulnerability to cause a denial of service...
Debian DSA-3528-1 : pidgin-otr - security update
Stefan Sperling discovered that pidgin-otr, a Pidgin plugin implementing Off-The-Record messaging, contained a use-after-free bug. This could be used by a malicious remote user to intentionally crash the application, thus causing a denial-of-service. %NASLMINLEVEL 70300 C Tenable Network Security...
[SECURITY] [DSA 3528-1] pidgin-otr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3528-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 23, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3528-1] pidgin-otr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3528-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 23, 2016 https://www.debian.org/security/faq -...
DSA-3528-1 pidgin-otr - security update
Bulletin has no description...